Tripwire Blog – Adam Parlett
Notably, a majority of the organizations who actively used a SIEM platform reported higher levels of confidence (60%) in their security posture, those who didnât use a SIEM at all 46% were not confident in their security, further cementing the utility of SIEM platforms in not only improving security capabilities, but also raising morale.
Adoption, Integration, and Delivery Trends SIEM adoption rates are on a steady upswing across industry lines, with more than thirty percent of the organizations stating that they are planning to implement it in the near future. SIEM Performance and Effectiveness With the increased functionality available now, they perform better on all fronts, with 85% of the surveyed enterprises reporting that their SIEM has been effective in identifying and remediating threats. An overwhelming majority of the respondent SIEM users have reported that SIEM has helped them enhance their threat detection abilities (81%), while a further 84% of the participants experienced a measurable reduction in security breaches due to the use of their SIEM platform. SIEM Benefits and Use Cases More efficient security operations (21%). Faster detection of and response to security events (14%). Better visibility into threats (13%). Factors Fueling the SIEM Purchase Decision When organizations faced the important task of selecting a SIEM solution, they evaluated their options based on cost first and foremost, followed by product performance and effectiveness, and then product features and functionality. Challenges Faced by Organizations The report indicates that the lack of skilled staff to effectively operate SIEM remains the biggest challenge (41%). The following two challenges are, handling too many false positives (37%), and a lack of budget (34%), highlighting the difficulty in configuring and fine-tuning it and the dilemma of balancing IT security budgetary allocations, respectively.
Link: https://www.tripwire.com/state-of-security/incident-detection/log-management-siem/state-of-security-siem/